September 4, 2024 at 06:54AM D-Link warns of multiple critical and high-severity remote code execution (RCE) vulnerabilities affecting the discontinued DIR-846 router model. Four RCE flaws, including OS command injection issues, remain unpatched. The company advises retiring and replacing EOL/EOS devices, as it has ceased firmware development for discontinued products and is unable to resolve … Read more
July 12, 2024 at 11:57AM Netgear issues urgent firmware update for multiple WiFi 6 router models to address stored XSS and authentication bypass vulnerabilities. Successful exploitation can lead to session hijacking, information theft, and unauthorized access, posing significant security risks. Users are strongly advised to immediately update their router firmware through Netgear Support to mitigate … Read more
June 11, 2024 at 09:52AM Redfox Security warns of six vulnerabilities in discontinued Netgear WNR614 N300 routers, including weak authentication allowing unauthorized access, lack of HTTPOnly cookie flag setting, weak password creation, plain text storage of Wi-Fi credentials, exposed WPS PIN and insecure firmware permissions. Users are advised to disable vulnerable functions, enforce strong passwords, … Read more
June 10, 2024 at 05:39PM Researchers at RedFox Security discovered six vulnerabilities in the popular but unsupported Netgear WNR614 N300 router. The vulnerabilities include authentication bypass, weak password policy, plain text password storage, and WPS PIN exposure. With no security updates expected, users are advised to apply mitigations or replace the device with a supported … Read more
May 1, 2024 at 09:27AM Cuttlefish, a new malware, targets enterprise and SOHO routers, creating proxy/VPN tunnels to steal data and authentication information. It can perform DNS/HTTP hijacking, targeting services such as Alicloud, AWS, and BitBucket. Black Lotus Labs found its active campaign in Turkey and recommends strengthening security measures and monitoring for unusual logins. … Read more
January 31, 2024 at 11:15AM CISA and the FBI have issued a warning to small office/home office (SOHO) router manufacturers to enhance security against attacks by Chinese state-backed hacking group Volt Typhoon. The agencies urge eliminating vulnerabilities, automating security updates, and safeguarding against Volt Typhoon activity. This follows ongoing attacks targeting U.S. critical infrastructure organizations … Read more